Re @Lee_Holmes The TPM thing is a perfect example, why do you _need_ TPM 2.0? Security. What specifically? Mumble mumble, passwords, mumble. So it's D...

Re @Lee_Holmes The problem IMO is not features it's transparency. Most of those examples are due to a lack of trust in MS for anyone's security, more ...

Re @arekfurt Sure, but at least give Apple some of the blame as well :-) I would really love to know what discussions were had about 10X and why it wa...

Re @arekfurt Yeah that's quite possible, we're currently in minimalism++ though. "Oh you thought that was a label? It's actually a button.". "I'll cli...

Re @wdormann I seem to recall some version of macOS where the very top line of pixels wasn't clickable and it caused so many frustrations :-)

由于勒索软件攻击拥有低成本、高产出等特性，网络犯罪集团可以通过不断推出新的变种版本，来躲避杀毒软件的查杀。而一旦中招，受害者往往为了减少损失，会选择支付赎金，无疑助长了勒索软件的泛滥态势。当前，利用勒索软件进行网络攻击并获利，已成为不容忽视的安全威胁。为此，看雪讲师backspray ...全文

6月27日，新耀东方——2021上海网络安全博览会暨高峰论坛在上海新国际博览中心盛大开幕。博览会为期3天（6.27-6.29）：以“展览”+“论坛”的形式开展，既有丰富多彩的大规模展台联会，又承办了囊括诸多大拿的主题论坛。众多业内顶级专家齐聚上海，围绕网络安全领域时下最新的热点内容和未来趋势进 ...全文

据《连线》杂志报道，IOActive安全研究员Josep Rodriquez警告称：许多现代ATM和POS系统中使用的NFC读卡器存在漏洞，使机器容易受到攻击。《连线》分享的一段视频中显示：Rodriquez仅仅在NFC读卡器上挥动他的智能手机，就使得马德里的一台ATM机显示出错误信息，然而，该机器对读卡器上的真实信用卡反 ...全文

转发微博

Re @bugghunterr @datsmeD Registration for workshops happen next month July 6th and they go fast.  Here is a calendar of deadlines:

Re @DevWagmi @dagger3d No, check this handy guide:

Re @fak3r Yes it has to be checked before you can be admitted.

Re @PDfh7gk @HarriHursti @NHSouthernGirl @VotingVillageDC Please bring what your health authority provided.

Re @fak3r @HarriHursti @VotingVillageDC All of DEF CON in person will require masks and a vaccination. Here are some details:

ABSTRACT: In this course we will teach you how to find vulnerabilities in web security according to the latest methods and techniques. We will demonst...

《【Black Hat Asia 2021系列分享】Safari 中的新攻击面：仅使用一个 Web 音频漏洞来统治 Safari》作者:栈长 @ 蚂蚁安全实验室网页链接以往对苹果Safari浏览器的漏洞研究往往聚焦于DOM或者JS引擎，但是像Safari所使用的一些系统库，例如音频库，视频库，字体库等等很少受到关注，鲜有 ...全文

RT illegalFawn: is #FF still a thing? nvm, w/o their help my account is useless @malwrhunterteam @JAMESWT_MHT @Bank_Security @JCyberSec_ @olihough86 @...

The North Korea's cyber forces have raked in billions of dollars for the regime by pulling off schemes ranging from ATM heists to cryptocurrency theft...

Reserve Bank of New Zealand Incident Assessment - Accellion FTA Data Breach  PDF Report:

RT Hindustan Times: A group of criminals in Kolkata hacked into three ATMs of a private bank between May 14 and 22 and stole ₹39.6 lakh in several in...

How Cybercriminals are hacking ATM machines? Here's a quick look

RT Germán Fernández 🇨🇱: Actor malicioso afirma tener 8.5 GB de datos sensibles de una empresa Mexicana 🇲🇽 dedicada al tema de pagos elec...

RT briankrebs: 1/3: Florian "The Shark" Tudor, the reputed boss of a Romanian ATM skimming/human trafficking syndicate that stole 100s of millions fro...

$83 million intercepted in INTERPOL HAECHI-I operation against online financial crime.

Financial spear-phishing campaigns pushing RATs

Two Bank executives charged for conspiring to launder hundreds of millions of dollars through U.S. 🇺🇸 financial system.

American Express Fined for Sending Millions of Spam Messages

The home page of the Ireland-based  🇮🇪 financial service firm Fexco redirects to a scam site.

3.4 billion credential stuffing attacks and more than 736 million web application attacks hit financial services organizations in 2020. Local File Inc...

Brazilian malware on the rise: Banking Trojan distribution by Kaspersky

RT Baptiste Robert: This is a very good phishing attempt

RT ThreatFabric: #Anatsa (#TeaBot) Android Banking Trojan added 7 more Italian banks to its keylogger target #8a5cbee0c4b28d5f48bc1c2dd5dd21cf045c51df...

The financially motivated cybercrime gang behind the Carbanak RAT is back with the Lizar malware:

Bizarro banking Trojan expands its attacks to Europe 🇪🇺

The creator of the Osiris banking trojan has shut down its operation citing a lack of interest for banking trojans in the cybercriminal underground. B...

TeaBot: a new Android malware emerged in Italy 🇮🇹, targets more than 60 banks in Europe 🇪🇺.

Re @smvllstvrs Not bad

很多人做爬虫、做接口遍历的方式来跑FOFA数据，做技术研究我们一般不会上纲上线。其实我们对高校开放免费的全量数据合作的，光明正大地找我们就行。有一次比较有意思，一位大企业的领导跟我说“我买了你们的高级账号，你看整个部门都在用”，我当时下巴差点掉下来。大佬们高抬贵手，适可而止

RT zhiniang peng: Publish our exploit for PrintNightmare, which can be used to RCE Domain Controller. 🔥🔥🔥 This is one of the hidden bombs in ...

来，给大家一福利，大家遇到那种电商维权推诿的，试试反诈中心的力量。

Apple TV 拍的《基地》发布了第二个预告片。今年 9 月 24 日播出。 查看图片

Through the use of hands-on, real-world examples, this Training will go beyond Metasploit, popping shells and zero day exploits, focusing on the most ...

Organizations are moving into the cloud at a rapid pace. This free Webcast focuses on the Microsoft Cloud (Azure AD & Microsoft Office 365) and explor...

Re @stoerchl & @jstrosch created the open-source framework subCrawl. subCrawl is written in Python3 & provides a modular framework for discovering ope...

Re @securityincite & @securosis & @rmogull teach the Cloud Security hands-on Training - providing students a comprehensive review of cloud security fu...

Apply for the chance to be awarded a Briefings pass for this year’s event with the #BlackHat USA Student Scholarship. Selected winners will have the ...

In “The Kitten that Charmed Me: The 9 Lives of a Nation State Attacker,” learn how an ITG18 operator set up their machine and various personas, henc...

In this #BHUSA Briefing, speakers introduce a new tool, called Symbexcel, that implements a Symbolic Executor for Excel 4 macros and various plugins t...

DEADLINE TODAY: This is the last day to submit your proposal to speak at #BlackHat Europe, happening November 10-11, 2021. See submission requirements...

ML researchers are increasingly targeting commercial ML systems such as those used by Facebook, Tesla, or Google. What legal risks are researchers run...